Here is a link to my Squid config. http://www.thinkwelldesigns.com/backups/squid.zip The ACL rules I use are in the section below: # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS The only way I have been able to make this work reliably is to add more ACL rules such as: acl elmerlaptop src ##.##.##.## http_access allow elmerlaptop But as I mentioned before, the public IP of the laptop changes. -----Original Message----- From: Amos Jeffries [mailto:squid3@xxxxxxxxxxxxx] Sent: Wednesday, August 26, 2009 7:41 PM To: Dave Burkholder Subject: RE: Laptops/Mobile Phones using Squid on the road On Wed, 26 Aug 2009 15:27:32 -0400, "Dave Burkholder" <dave@xxxxxxxxxxxxxxxxxxxx> wrote: > Authentication was created for exactly this purpose. > > With explicitly set proxy settings in the browsers, there is no reason > why you can't allow them to login to the proxy when they are on the > road. Or even at HQ. > > Note that by entering the proxy settings in the browsers you are no > longer using "transparent mode". > > Assuming by "transparent" you actually mean "NAT intercepting" you > should of course have Squid listening on one port for the intercepted > requests (authentication not possible) and another for the configured > browsers (authentication possible). > > Amos Sorry if you get this twice, my mail app died... I think the DG rules and access may have to be adjusted to let external people who are logged in through. If not that I think I'm going to have to see your acl and http_access lines config to see if there is any obvious reason for the denial. Amos
